Tech

Security alert from Google: one million account credentials are stolen every month

Security alert from Google: one million account credentials are stolen every month

Following a year-long study by Google and UC Berkeley, we know that data breaches are the most popular method of stealing users' credentials, but phishing scams are more risky because of the extra information that's exposed.

12 percent of the records exposed through data breaches used Gmail addresses, and 7 percent of these cases saw the same password used for both accounts. Google says that 12-25% of the attacks recorded during its research yielded a valid password, while third-party breaches settled at 12%.

Even though the company is taking actions against anonymous breaches by securing users password, the hackers are now trying to collect more sensitive details about someone's account, which are usually asked during the sign-up.

The largest number of stolen logins that Google found for sale on black markets totalled 3.3 billion and came from third-party data breaches.

The threats online can be encapsulated to three MOs: keylogging, third-party breaches, and phishing.

Google said that hackers are searching and have found different usernames and passwords on different platforms on the black market.

More news: Buhari backs El-Rufai's move to sack teachers

From March 2016 to March 2017, Google and UCB trawled public and private hacker forums and paste sites to search for stolen log-in names, passwords, and other account details.

"Finally, we regularly scan activity across Google's suite of products for suspicious actions performed by hijackers and when we find any, we lock down the affected accounts to prevent any further damage as quickly as possible", the company added. In other words, Google accounts get stolen mainly due to user-side errors, rather than hacking.

"While we have already applied these insights to our existing protections, our findings are yet another reminder that we must continuously evolve our defences in order to stay ahead of these bad actors and keep users safe", they said.

Over 4000 distinct phishing kits were discovered during the study, the most popular of which emulates Gmail, Yahoo, and Hotmail login pages. On the other hand, 18 percent targeted phone numbers and the device's make and model.

Google has increasingly tried to protect its users from having their accounts "hijacked" through the implementation of new security tools such as its recently announced Advanced Protection program and through its new two step verification program Google Prompt.


  • NASA postpones JPSS-1 weather satellite launch

    NASA postpones JPSS-1 weather satellite launch

    The data collected from the JPSS is fed into the numerical forecast models to help improve them. "JPSS will continue this trend". GOES-16 is a "geostationary" satellite, which means it's always facing the same region of the Earth from 22,400 miles up.
    Dominic Solanke could earn England debut on Tuesday night

    Dominic Solanke could earn England debut on Tuesday night

    But clearly that (match situation) is an option". "We have to have a plan for that, we have to take into consideration the new format that might be involved".
    Google Doodle Celebrates 131 Years Of An Office Staple: The Hole Punch

    Google Doodle Celebrates 131 Years Of An Office Staple: The Hole Punch

    The hole puncher doodle reaches countries across Europe, North America, Brazil, Australia, New Zealand and India. Even with the advent of the digital age, the hole punch still remains a household object in offices and schools.
  • IndiGo Aircraft Hits Wild Boar on Runway During Take-off, All Passengers Safe

    IndiGo Aircraft Hits Wild Boar on Runway During Take-off, All Passengers Safe

    The wild-boar which came on to the runway in the dark unknowingly made it's way to the rear wheel of the aircraft. It is to be seen what steps the airport authorities will take to prevent recurrence of the incident.
    Tech giant Uber clinches $1bn investment as float beckons

    Tech giant Uber clinches $1bn investment as float beckons

    But the deal was threatened by conflict between Mr Kalanick and U.S. venture capital firm Benchmark. The terms were signed on Sunday, although the tender offer would likely take weeks to complete.

    CVS Health Corporation (NYSE:CVS) Receives "Hold" Rating from Robert W. Baird

    Finally, Needham & Company LLC restated a "hold" rating on shares of CVS Health Corporation in a report on Sunday, September 10th. It increased, as 24 investors sold STAY shares while 42 reduced holdings. 30 funds opened positions while 48 raised stakes.
  • Fury Road Bonus — For Mad Max

    Fury Road Bonus — For Mad Max

    The movie made $378.9 million worldwide, including $154 million domestic, immediately igniting talk of a sequel. It would be wise to stick with him.

    Wolfe Research Boosts Rating On American Eagle Outfitters (AEO) To "Market Perform"

    The firm has a market capitalization of $2,475.15, a price-to-earnings ratio of 12.16, a P/E/G ratio of 1.41 and a beta of 1.10. Analysts are also projecting an Average Revenue Estimate for American Eagle Outfitters, Inc .as $960210 in the Current Quarter.
    Happy Children's Day: Images, Quotes and Speech

    Happy Children's Day: Images, Quotes and Speech

    On this day, children are treated specially across the country and are allured by gifts, candies to mark the day. One of the personalities who loved children as much as Pandit Nehru was the 11th President of India Dr.
  • Tesco gets green light for £3.7bn Booker takeover

    Tesco gets green light for £3.7bn Booker takeover

    The CMA was previously expected to recommend that disposals might be needed to alleviate competition concerns. It said they argued that Booker could raise prices to the shops it supplies.
    Rs 1400 crore unearthed during raids on Sasikala clan, Jaya TV

    Rs 1400 crore unearthed during raids on Sasikala clan, Jaya TV

    It has been found out that Sasikala and family have evaded taxes amounting to Rs 1,000 crore, reported The Asian Age . The searches at some premises continued for days.
    Justice League Will See The 'True Superman'

    Justice League Will See The 'True Superman'

    In fact, when Reeves jumped on board, he made it clear that he had a different vision for the film and would give it a new script. Ben Affleck and controversial comments have become synonymous ever since he stepped out of the solo Batman film's direction.